XDR Gains Attention Amid Security Operations Challenges

XDR Gains Attention Amid Security Operations Challenges

By Greg Tavarez

Security operations demand massive scale to collect, process, analyze and act upon large amounts of data. Early extended detection and response, or XDR, was an improvement on disconnected EDR and NDR tools, but security operations challenges continued to arise.

Trellix, a cybersecurity company delivering XDR, released findings from its “SOC Modernization and the Role of XDR” report and examined the state of security operations amid a challenging landscape. Not surprisingly, more than half of respondents believe their organization’s security operations environment has become more difficult to manage over the last two years.

The rise in difficulty is due to the increasingly dangerous threat landscape, a growing attack surface, the volume and complexity of security alerts and public cloud proliferation. To cope with the increasing threat volume and IT scale/sprawl, organizations have several initiatives focused on SOC modernization.

It’s not just the IT landscape, though, that is contributing to security challenges.  Eight-one percent of companies also say the cybersecurity skills shortage is impacting their operations.

Understaffed areas of security operations include:

  • Security architect (37%)
  • Security engineers (35%)
  • Tier-3 analysts (34%)
  • Vulnerability assessment/prioritization analysts (33%)

Cybersecurity skills shortages typically lead to increasing workload on existing staff as well as staff attrition and burnout – all of which increases risk within an organization.

Amid these cybersecurity challenges, XDR continued to gain more industry attention. In fact, 61% of security professionals claim they are very familiar with XDR technology. There is work still to do when it comes to raising XDR awareness, as 39% are still only somewhat familiar, not very familiar or not at all familiar with it.

Users are also confused about what XDR really is. A little more than half of security pros say XDR is an extension of EDR. About 44% believe XDR is a detection and response product from a single security technology vendor or an integrated and heterogeneous security product architecture designed to interoperate and coordinate on threat prevention, detection and response.

Regardless of how XDR is defined, security professionals continue to show interest in using XDR to help them address several threat detection and response challenges.

Edited by Erik Linask
Get stories like this delivered straight to your inbox. [Free eNews Subscription]

MSPToday Editor

Related Articles

Kong's New Dedicated Cloud Gateways: Fully Managed for Optimal Efficiency

By: Greg Tavarez    10/3/2023

Kong introduced Kong Konnect Dedicated Cloud Gateways, which offers a straightforward and budget-friendly approach to deploying Kong Gateways in the c…

Read More

Kterio and eSentire Team Up to Protect Critical Infrastructure from Cyber Threats

By: Greg Tavarez    9/29/2023

Combined, eSentire and Kterio are positioned to deliver a 24/7 full-scale solution to support teams in charge of critical infrastructure firms.

Read More

GoSecure Signs on as a Silver Sponsor for MSP Expo 2024, Part of the #TECHSUPERSHOW

By: TMCnet News    9/29/2023

Leading Communications and Technology Event Returns to Florida for the 24th Consecutive Year.

Read More

Gaichu Managed Services and Overwatch by High Wire Networks Bring Advanced Cybersecurity Solutions to US

By: Greg Tavarez    9/28/2023

Gaichu Managed Services is bringing 24/7 monitoring and rapid response capabilities to SMBs through a partnership with High Wire Networks' Overwatch M…

Read More

Stamus Networks Expands Reach Through Ayscom Reseller Pact

By: Greg Tavarez    9/28/2023

Stamus Networks expanded its reach to Spain and Portugal through a reseller agreement with Ayscom.

Read More